b3e29dd28f05f1a735ac38eff1ccbe46_JaffaCakes118 | Triage

Sharing

General

Target

b3e29dd28f05f1a735ac38eff1ccbe46_JaffaCakes118
Size

87KB
MD5

b3e29dd28f05f1a735ac38eff1ccbe46
SHA1

28fba5f04d2837a5719e420530891753cf61a311
SHA256

8a21bbd27522cee3d18242e4b9c835d6ed1eaea94d17a66b01200cd1168cbbc7
SHA512

43206a72113f8528dddbd9bbfcd495f213839416ad6f00985ed9bfb85a47605c7f5801ea0033b72b02ea12ca2d393f648ff5442022e604daa9ca5bec039bf784
SSDEEP

1536:9aY+tW4F9nAXVZ7Uo2B7K6WoWbHTtaYE1H4gEbVa9FGC9ph9a:sCGxSfARBGPhH4kgEb7U9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3e29dd28f05f1a735ac38eff1ccbe46_JaffaCakes118

Files

b3e29dd28f05f1a735ac38eff1ccbe46_JaffaCakes118
.exe windows:5 windows x86 arch:x86

faaab665720dbdf10587de484d3c56eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateMenu
GetFocus
GetWindow
GetDesktopWindow
InsertMenuA
GetCursor
DestroyMenu
GetCursorPos
GetActiveWindow
GetDC
PeekMessageA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

DeleteObject
GetCurrentObject
CreateBitmap
SelectObject

shlwapi

ord437

oleaut32

VarBoolFromStr

kernel32

InitializeCriticalSection
EnterCriticalSection
GetLocalTime
FreeLibrary
LoadLibraryA
DeleteCriticalSection
GetSystemInfo
GlobalAlloc
GlobalFree
GetLastError
HeapAlloc
HeapCreate
LeaveCriticalSection

Sections

.text
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE